Hi Jan,
On Sunday 30 September 2007, Jan Engelhardt wrote:
> +static unsigned int
> +tproxy_target(struct sk_buff **pskb, const struct net_device *in,
> + const struct net_device *out, unsigned int hooknum,
> + const struct xt_target *target, const void *targinfo)
> +{
> + const struct xt_tproxy_info *tgi = targinfo;
> + const struct iphdr *iph = ip_hdr(*pskb);
> + struct sk_buff *skb = *pskb;
> + struct udphdr _hdr, *hp;
> +
> + /* TCP/UDP only */
> + if (iph->protocol != IPPROTO_TCP && iph->protocol != IPPROTO_UDP)
> + return NF_ACCEPT;
> +
> + hp = skb_header_pointer(*pskb, iph->ihl * 4, sizeof(_hdr), &_hdr);
> + if (hp == NULL)
> + return NF_DROP;
> +
> + skb->nf_tproxy.redirect_address = tgi->laddr ? : iph->daddr;
> + skb->nf_tproxy.redirect_port = tgi->lport ? : hp->dest;
> +
> + pr_debug(KERN_DEBUG "redirecting: proto %d %08x:%d -> %08x:%d\n",
> + iph->protocol, ntohl(iph->daddr), ntohs(hp->dest),
> + ntohl(skb->nf_tproxy.redirect_address),
> + ntohs(skb->nf_tproxy.redirect_port));
> +
> + return NF_ACCEPT;
> +}
I guess this is also an old version, the current one does not look like
this. Are you sure this is really up-to-date?
--
KOVACS Krisztian
-
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
